$ rpki-client -vvf rpki.apnic.net/member_repository/A915BF76/944E38921DAB11E2BB30CAA908B02CD2/84BF09DCA47211EFA8AC7612C4F9AE02.roa File: 84BF09DCA47211EFA8AC7612C4F9AE02.roa (raw, json) Hash identifier: jnE2CFwEnryv4qVtFRszCwHKLAY206wXupor+KXr4Q0= Subject key identifier: BF:50:60:FE:E1:BF:46:B4:C8:E8:27:1C:86:79:A6:BD:47:04:DB:20 Certificate issuer: /CN=A915BF76/serialNumber=63EC4E6380FAAEA51107E9C40C2F1058E08F856E Certificate serial: 3470 Authority key identifier: 63:EC:4E:63:80:FA:AE:A5:11:07:E9:C4:0C:2F:10:58:E0:8F:85:6E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y-xOY4D6rqURB-nEDC8QWOCPhW4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915BF76/944E38921DAB11E2BB30CAA908B02CD2/84BF09DCA47211EFA8AC7612C4F9AE02.roa Signing time: Sat 16 Nov 2024 23:28:43 +0000 ROA not before: Sat 16 Nov 2024 23:28:43 +0000 ROA not after: Tue 30 Dec 2025 00:00:00 +0000 asID: 151151 IP address blocks: 103.21.137.0/24 maxlen: 24 103.21.139.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915BF76/944E38921DAB11E2BB30CAA908B02CD2/Y-xOY4D6rqURB-nEDC8QWOCPhW4.crl rsync://rpki.apnic.net/member_repository/A915BF76/944E38921DAB11E2BB30CAA908B02CD2/Y-xOY4D6rqURB-nEDC8QWOCPhW4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y-xOY4D6rqURB-nEDC8QWOCPhW4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 15:21:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13424 (0x3470) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915BF76/serialNumber=63EC4E6380FAAEA51107E9C40C2F1058E08F856E Validity Not Before: Nov 16 23:28:43 2024 GMT Not After : Dec 30 00:00:00 2025 GMT Subject: CN=67392aab-944e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:4e:9a:d1:b9:56:a7:ac:95:0c:e2:0f:12:1d: 01:dd:17:b0:d2:4f:84:cc:c3:97:76:09:4c:71:1c: 0e:6f:de:36:40:19:c5:8c:a5:08:70:bf:70:03:2c: 75:6e:03:87:2f:c9:44:e2:e6:2c:fb:ef:00:37:fb: 08:25:0d:20:61:a0:bc:2b:9b:98:0e:46:47:00:a4: 78:2b:ca:6b:99:25:b4:b0:4d:13:4b:ae:00:43:48: 02:54:77:c1:fe:0f:a2:04:6d:42:32:42:b7:6c:bf: d0:2e:ee:99:22:45:9c:e0:6e:86:b3:fa:86:f6:38: 38:1f:91:51:f6:e4:31:23:f3:26:a2:2a:41:8f:fd: 60:ce:27:05:f1:0e:9c:02:59:eb:b4:72:c7:6b:61: 54:fd:ce:67:ec:23:de:2b:26:e3:6a:19:76:35:34: ea:cb:61:b6:0e:7d:14:5c:6c:ce:ad:87:29:2e:38: 9d:a9:b6:da:be:ed:f2:74:a6:91:c9:ae:14:18:87: 0e:93:79:f8:bd:ab:d3:ca:41:dc:af:27:e1:9a:16: 06:86:cb:ca:60:81:35:43:8e:60:21:46:c1:30:19: 2a:2b:a7:02:78:6b:8b:8b:5f:ec:c8:5f:44:e8:99: 9f:9f:75:9e:7c:36:f3:6b:22:40:f4:ac:6a:ea:d0: 77:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BF:50:60:FE:E1:BF:46:B4:C8:E8:27:1C:86:79:A6:BD:47:04:DB:20 X509v3 Authority Key Identifier: keyid:63:EC:4E:63:80:FA:AE:A5:11:07:E9:C4:0C:2F:10:58:E0:8F:85:6E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915BF76/944E38921DAB11E2BB30CAA908B02CD2/Y-xOY4D6rqURB-nEDC8QWOCPhW4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y-xOY4D6rqURB-nEDC8QWOCPhW4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915BF76/944E38921DAB11E2BB30CAA908B02CD2/84BF09DCA47211EFA8AC7612C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.21.137.0/24 103.21.139.0/24 Signature Algorithm: sha256WithRSAEncryption b0:88:09:a5:5c:8d:b5:93:8d:f9:30:9f:d2:cc:b0:bd:e3:9a: dd:91:2d:96:29:76:f1:4d:99:0f:93:78:9e:79:81:86:fa:ac: 09:ae:ec:8b:35:fb:0c:91:b9:b1:05:82:1a:8a:60:b3:1f:9b: 60:0f:ed:97:14:84:36:a6:fa:05:d1:df:05:13:f6:40:ce:90: e5:e2:13:76:71:01:31:ad:0e:4f:ba:3e:5a:6e:e1:d5:69:15: f4:34:c4:a4:37:98:4b:35:4a:ba:d0:43:b9:0e:e9:d3:e7:c8: 1b:c8:5d:e9:c2:8f:48:27:15:f1:0b:04:27:f8:ca:b2:b2:3c: d8:4e:5f:b1:89:aa:74:2a:ea:6e:7b:7f:d6:d4:58:04:e0:e0: 93:5e:71:f2:b8:54:b6:34:b5:df:8d:c4:5e:55:31:1e:36:b3: 23:af:7f:9e:b9:00:2f:cf:8e:69:be:88:73:06:be:46:a3:23: 2e:1d:e4:0e:1c:25:74:0c:af:b7:30:35:2b:13:1a:01:a1:54: ea:fe:69:1d:ea:34:6b:4e:fb:5b:d9:59:62:87:f3:2f:8e:ca: e5:75:f5:3c:a6:05:3f:c1:ec:a7:9c:0f:96:03:79:97:d8:6f: 78:72:2e:88:78:46:88:be:73:8e:f4:0c:ef:9a:0e:82:6a:c7: 79:91:4e:68 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICNHAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUJGNzYxMTAvBgNVBAUTKDYzRUM0RTYzODBGQUFFQTUxMTA3RTlDNDBDMkYxMDU4 RTA4Rjg1NkUwHhcNMjQxMTE2MjMyODQzWhcNMjUxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NzM5MmFhYi05NDRlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx06a0blWp6yVDOIPEh0B3Rew0k+EzMOXdglMcRwOb942QBnFjKUIcL9wAyx1 bgOHL8lE4uYs++8AN/sIJQ0gYaC8K5uYDkZHAKR4K8prmSW0sE0TS64AQ0gCVHfB /g+iBG1CMkK3bL/QLu6ZIkWc4G6Gs/qG9jg4H5FR9uQxI/MmoipBj/1gzicF8Q6c AlnrtHLHa2FU/c5n7CPeKybjahl2NTTqy2G2Dn0UXGzOrYcpLjidqbbavu3ydKaR ya4UGIcOk3n4vavTykHcryfhmhYGhsvKYIE1Q45gIUbBMBkqK6cCeGuLi1/syF9E 6Jmfn3WefDbzayJA9Kxq6tB3OQIDAQABo4ICmzCCApcwHQYDVR0OBBYEFL9QYP7h v0a0yOgnHIZ5pr1HBNsgMB8GA1UdIwQYMBaAFGPsTmOA+q6lEQfpxAwvEFjgj4Vu MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1QkY3Ni85NDRFMzg5MjFE QUIxMUUyQkIzMENBQTkwOEIwMkNEMi9ZLXhPWTRENnJxVVJCLW5FREM4UVdPQ1Bo VzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1kteE9ZNEQ2cnFVUkItbkVEQzhRV09DUGhXNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NUJGNzYvOTQ0RTM4OTIxREFCMTFFMkJCMzBDQUE5MDhCMDJDRDIvODRCRjA5RENB NDcyMTFFRkE4QUM3NjEyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBABnFYkDBABnFYswDQYJKoZIhvcNAQELBQADggEBALCICaVc jbWTjfkwn9LMsL3jmt2RLZYpdvFNmQ+TeJ55gYb6rAmu7Is1+wyRubEFghqKYLMf m2AP7ZcUhDam+gXR3wUT9kDOkOXiE3ZxATGtDk+6Plpu4dVpFfQ0xKQ3mEs1SrrQ Q7kO6dPnyBvIXenCj0gnFfELBCf4yrKyPNhOX7GJqnQq6m57f9bUWATg4JNecfK4 VLY0td+NxF5VMR42syOvf565AC/Pjmm+iHMGvkajIy4d5A4cJXQMr7cwNSsTGgGh VOr+aR3qNGtO+1vZWWKH8y+OyuV19TymBT/B7KecD5YDeZfYb3hyLoh4Roi+c470 DO+aDoJqx3mRTmg= -----END CERTIFICATE-----Generated at Fri Nov 22 16:49:20 2024 by rpki-client on console-ams.rpki-client.org